Privacy Policy for Breeze Digest

Last Updated: 19th December 2024

Breeze Digest is a Chrome extension designed to help users save, summarize, and manage articles and links. We are committed to protecting your privacy and ensuring transparency in how we handle your data, in compliance with applicable laws, including the General Data Protection Regulation (GDPR) for users within the European Economic Area (EEA).

1. Information We Collect

To deliver the functionality of the Breeze Digest extension, we may collect and process the following data:

  • Bookmarked URLs: URLs of websites you choose to save and summarise.

  • Website Content: The visible text content of bookmarked pages is temporarily processed for summarization.

  • Technical Information: Basic non-identifiable data, such as browser version, Chrome extension version, and timestamps, to ensure technical performance.

We do not collect personal identifiers (e.g., name, email, IP address) unless explicitly provided.

2. Legal Basis for Processing

Under GDPR, we rely on the following legal bases for collecting and processing your data:

  • Performance of a Contract: To fulfill the core functionality of Breeze Digest (e.g., summarizing saved URLs and generating newsletters).

  • Legitimate Interest: To maintain and improve the extension’s functionality and ensure a smooth user experience.

  • User Consent: If you explicitly agree to additional features (e.g., feedback collection, optional analytics).

3. How We Use Your Information

We use the collected data to:

  • Generate AI-powered summaries of bookmarked URLs.

  • Compile summaries into downloadable newsletters in PDF format.

  • Monitor and improve technical performance.

We do not use your data for advertising, reselling, or profiling.

4. Data Sharing and Third Parties

Your data is shared only as necessary to provide the service:

  • Third-Party AI APIs: The visible content of bookmarked pages is transmitted to external AI APIs (e.g., OpenAI, Claude API) to generate summaries. These services do not receive personal data.

  • Cloud Hosting Providers: Our backend, hosted on secure platforms such as Google Cloud Run or AWS, processes the required data temporarily for summarisation.

We ensure all third-party providers comply with GDPR and other applicable privacy regulations.

5. Data Storage and Retention

  • Temporary Processing: All bookmarked website content sent for summarization is processed temporarily and not stored on our servers after summarization.

  • Retention Period: We do not retain personal data for longer than necessary. Any stored technical or usage data (e.g., logs) will be deleted automatically after [e.g., 30 days].

  • User Control: You can request the deletion of any data associated with your use of the extension at any time (see Section 7: Your GDPR Rights).

6. Data Security

We employ industry-standard security measures to protect your data:

  • All communication between the extension, backend servers, and third-party APIs is secured via HTTPS encryption.

  • Data is anonymized wherever possible.

  • Access to servers and APIs is restricted to authorised systems only.

Despite our best efforts, no system can guarantee absolute security.

7. Your GDPR Rights

If you are located in the EU/EEA, you have specific rights under the GDPR:

  1. Right of Access: You can request a copy of the data we process about you.

  2. Right to Rectification: You can request corrections to inaccurate or incomplete data.

  3. Right to Erasure (Right to be Forgotten): You can request that we delete any personal data we hold about you.

  4. Right to Restrict Processing: You can ask us to limit the way we use your data.

  5. Right to Object: You can object to our processing of your data under certain circumstances.

  6. Data Portability: You can request that your data be transferred to you or another service provider.

  7. Right to Withdraw Consent: If we rely on your consent to process data, you may withdraw it at any time.

To exercise any of these rights, please contact us at:
Email: hello@ryteproducts.com

We will respond to your request within 30 days, as required under GDPR.

8. International Data Transfers

If your data is transferred outside the EU/EEA (e.g., to AI APIs or cloud hosting providers), we ensure that appropriate safeguards are in place, including:

  • Standard Contractual Clauses (SCCs) approved by the European Commission.

  • Ensuring third-party providers comply with GDPR regulations.

9. Use of Remote Code

Breeze Digest relies on remote code to:

  • Scrape and process visible text content from saved URLs.

  • Communicate securely with external AI APIs to generate summaries.

We ensure the remote code is minimal, secure, and used strictly to fulfill the extension’s single purpose.

10. Changes to This Policy

We may update this Privacy Policy to reflect changes to our practices or compliance requirements. Updates will be posted on this page, and you will be notified of significant changes.

11. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy, please contact us:
Email: hello@ryteproducts.com

Summaries

Bookmark articles and generate AI-powered summaries.

Questions?

hello@ryteproducts.com

© 2024. All rights reserved.

Privacy Policy